CVE-2019-13946
Published: Feb 11, 2020
Modified: Aug 5, 2024
CVSS v3.1
7.5
Description
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack. The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device.
| Vendor | Product | Versions |
|---|---|---|
Siemens | Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller | affected 0 - < * |
Siemens | Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 | affected All Versions < V4.5 |
Siemens | Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P | affected All Versions < V4.6 |
Siemens | PROFINET Driver for Controller | affected All Versions < V2.1 |
Siemens | RUGGEDCOM RM1224 family | affected All versions < V4.3 |
Siemens | SCALANCE M804PB | affected All versions < V4.3 |
Siemens | SCALANCE M812-1 ADSL-Router | affected All versions < V4.3 |
Siemens | SCALANCE M812-1 ADSL-Router | affected All versions < V4.3 |
Siemens | SCALANCE M816-1 ADSL-Router | affected All versions < V4.3 |
Siemens | SCALANCE M816-1 ADSL-Router | affected All versions < V4.3 |
Siemens | SCALANCE M826-2 SHDSL-Router | affected All versions < V4.3 |
Siemens | SCALANCE M874-2 | affected All versions < V4.3 |
Siemens | SCALANCE M874-3 | affected All versions < V4.3 |
Siemens | SCALANCE M876-3 | affected All versions < V4.3 |
Siemens | SCALANCE M876-3 (ROK) | affected All versions < V4.3 |
Siemens | SCALANCE M876-4 (EU) | affected All versions < V4.3 |
Siemens | SCALANCE M876-4 (NAM) | affected All versions < V4.3 |
Siemens | SCALANCE S615 LAN-Router | affected All versions < V4.3 |
Siemens | SCALANCE W-700 IEEE 802.11n family | affected All versions <= V6.0.1 |
Siemens | SCALANCE X200-4P IRT | affected All Versions < V5.3 |
Siemens | SCALANCE X201-3P IRT | affected All Versions < V5.3 |
Siemens | SCALANCE X201-3P IRT PRO | affected All Versions < V5.3 |
Siemens | SCALANCE X202-2IRT | affected All Versions < V5.3 |
Siemens | SCALANCE X202-2P IRT | affected All Versions < V5.3 |
Siemens | SCALANCE X202-2P IRT PRO | affected All Versions < V5.3 |
Siemens | SCALANCE X204-2 | affected All versions < V5.2.5 |
Siemens | SCALANCE X204-2FM | affected All versions < V5.2.5 |
Siemens | SCALANCE X204-2LD | affected All versions < V5.2.5 |
Siemens | SCALANCE X204-2LD TS | affected All versions < V5.2.5 |
Siemens | SCALANCE X204-2TS | affected All versions < V5.2.5 |
Siemens | SCALANCE X204IRT | affected All Versions < V5.3 |
Siemens | SCALANCE X204IRT PRO | affected All Versions < V5.3 |
Siemens | SCALANCE X206-1 | affected All versions < V5.2.5 |
Siemens | SCALANCE X206-1LD | affected All versions < V5.2.5 |
Siemens | SCALANCE X208 | affected All versions < V5.2.5 |
Siemens | SCALANCE X208PRO | affected All versions < V5.2.5 |
Siemens | SCALANCE X212-2 | affected All versions < V5.2.5 |
Siemens | SCALANCE X212-2LD | affected All versions < V5.2.5 |
Siemens | SCALANCE X216 | affected All versions < V5.2.5 |
Siemens | SCALANCE X224 | affected All versions < V5.2.5 |
Siemens | SCALANCE X302-7 EEC (230V, coated) | affected All versions < V4.1.4 |
Siemens | SCALANCE X302-7 EEC (230V) | affected All versions < V4.1.4 |
Siemens | SCALANCE X302-7 EEC (24V, coated) | affected All versions < V4.1.4 |
Siemens | SCALANCE X302-7 EEC (24V) | affected All versions < V4.1.4 |
Siemens | SCALANCE X302-7 EEC (2x 230V, coated) | affected All versions < V4.1.4 |
Siemens | SCALANCE X302-7 EEC (2x 230V) | affected All versions < V4.1.4 |
Siemens | SCALANCE X302-7 EEC (2x 24V, coated) | affected All versions < V4.1.4 |
Siemens | SCALANCE X302-7 EEC (2x 24V) | affected All versions < V4.1.4 |
Siemens | SCALANCE X304-2FE | affected All versions < V4.1.4 |
Siemens | SCALANCE X306-1LD FE | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-2 EEC (230V, coated) | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-2 EEC (230V) | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-2 EEC (24V, coated) | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-2 EEC (24V) | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-2 EEC (2x 230V, coated) | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-2 EEC (2x 230V) | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-2 EEC (2x 24V, coated) | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-2 EEC (2x 24V) | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-3 | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-3 | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-3LD | affected All versions < V4.1.4 |
Siemens | SCALANCE X307-3LD | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2 | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2 | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2LD | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2LD | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2LH | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2LH | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2LH+ | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2LH+ | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2M | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2M | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2M PoE | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2M PoE | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2M TS | affected All versions < V4.1.4 |
Siemens | SCALANCE X308-2M TS | affected All versions < V4.1.4 |
Siemens | SCALANCE X310 | affected All versions < V4.1.4 |
Siemens | SCALANCE X310 | affected All versions < V4.1.4 |
Siemens | SCALANCE X310FE | affected All versions < V4.1.4 |
Siemens | SCALANCE X310FE | affected All versions < V4.1.4 |
Siemens | SCALANCE X320-1 FE | affected All versions < V4.1.4 |
Siemens | SCALANCE X320-1-2LD FE | affected All versions < V4.1.4 |
Siemens | SCALANCE X408-2 | affected All versions < V4.1.4 |
Siemens | SCALANCE XB-200 family | affected All Versions < V3.0 |
Siemens | SCALANCE XC-200 | affected All Versions < V3.0 |
Siemens | SCALANCE XF-200BA | affected All Versions < V3.0 |
Siemens | SCALANCE XF201-3P IRT | affected All Versions < V5.3 |
Siemens | SCALANCE XF202-2P IRT | affected All Versions < V5.3 |
Siemens | SCALANCE XF204 | affected All versions < V5.2.5 |
Siemens | SCALANCE XF204-2 | affected All versions < V5.2.5 |
Siemens | SCALANCE XF204-2BA IRT | affected All Versions < V5.3 |
Siemens | SCALANCE XF204IRT | affected All Versions < V5.3 |
Siemens | SCALANCE XF206-1 | affected All versions < V5.2.5 |
Siemens | SCALANCE XF208 | affected All versions < V5.2.5 |
Siemens | SCALANCE XM-400 family | affected All Versions < V6.0 |
Siemens | SCALANCE XP-200 | affected All Versions < V3.0 |
Siemens | SCALANCE XR-300WG family | affected All Versions < V3.0 |
Siemens | SCALANCE XR-500 family | affected All Versions < V6.0 |
Siemens | SCALANCE XR324-12M (230V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M (230V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M (230V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M (230V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M (24V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M (24V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M (24V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M (24V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M TS (24V) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-12M TS (24V) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (24V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (24V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (24V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (24V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (2x 24V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (2x 24V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (2x 24V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M EEC (2x 24V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M PoE (230V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M PoE (230V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M PoE (24V, ports on front) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M PoE (24V, ports on rear) | affected All versions < V4.1.4 |
Siemens | SCALANCE XR324-4M PoE TS (24V, ports on front) | affected All versions < V4.1.4 |
Siemens | SIMATIC CP 1616 and CP 1604 | affected All Versions < V2.8 |
Siemens | SIMATIC CP 343-1 | affected All versions |
Siemens | SIMATIC CP 343-1 Advanced | affected All versions |
Siemens | SIMATIC CP 343-1 ERPC | affected All versions |
Siemens | SIMATIC CP 343-1 Lean | affected All versions |
Siemens | SIMATIC CP 443-1 | affected 0 - < V3.3 |
Siemens | SIMATIC CP 443-1 | affected 0 - < V3.3 |
Siemens | SIMATIC CP 443-1 Advanced | affected 0 - < V3.3 |
Siemens | SIMATIC CP 443-1 OPC UA | affected All versions |
Siemens | SIMATIC ET 200AL IM 157-1 PN | affected All versions |
Siemens | SIMATIC ET 200M IM 153-4 PN IO HF (incl. SIPLUS variants) | affected All versions |
Siemens | SIMATIC ET 200M IM 153-4 PN IO ST (incl. SIPLUS variants) | affected All versions |
Siemens | SIMATIC ET 200MP IM 155-5 PN HF | affected 0 - < V4.2.0 |
Siemens | SIMATIC ET 200MP IM 155-5 PN ST | affected 0 - < V4.1.0 |
Siemens | SIMATIC ET 200pro IM 154-3 PN HF | affected 0 - < * |
Siemens | SIMATIC ET 200pro IM 154-4 PN HF | affected All versions |
Siemens | SIMATIC ET 200SP IM 155-6 PN BA | affected 0 - < * |
Siemens | SIMATIC ET 200SP IM 155-6 PN HF | affected 0 - < V4.2.0 |
Siemens | SIMATIC ET 200SP IM 155-6 PN ST | affected 0 - < V4.1.0 |
Siemens | SIMATIC ET 200SP IM 155-6 PN ST BA | affected 0 - < V4.1.0 |
Siemens | SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 4AO U/I 4xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12 | affected All versions |
Siemens | SIMATIC ET200ecoPN: IO-Link Master | affected All versions |
Siemens | SIMATIC ET200S (incl. SIPLUS variants) | affected All versions |
Siemens | SIMATIC IPC Support, Package for VxWorks | affected 0 - < * |
Siemens | SIMATIC MV420 SR-B | affected 0 - < V7.0.6 |
Siemens | SIMATIC MV420 SR-B Body | affected 0 - < V7.0.6 |
Siemens | SIMATIC MV420 SR-P | affected 0 - < V7.0.6 |
Siemens | SIMATIC MV420 SR-P Body | affected 0 - < V7.0.6 |
Siemens | SIMATIC MV440 HR | affected 0 - < V7.0.6 |
Siemens | SIMATIC MV440 SR | affected 0 - < V7.0.6 |
Siemens | SIMATIC MV440 UR | affected 0 - < V7.0.6 |
Siemens | SIMATIC PN/PN Coupler (incl. SIPLUS NET variants) | affected All Versions |
Siemens | SIMATIC RF180C | affected All versions |
Siemens | SIMATIC RF182C | affected All versions |
Siemens | SIMATIC RF600R family | affected All versions < V3 |
Siemens | SIMOTION C | affected All versions < V4.5 |
Siemens | SIMOTION D | affected All versions < V4.5 |
Siemens | SIMOTION P | affected All versions < V4.5 |
Siemens | SINAMICS DCP | affected All Versions < V1.3 |
Siemens | SIPLUS ET 200MP IM 155-5 PN HF | affected 0 - < V4.2.0 |
Siemens | SIPLUS ET 200MP IM 155-5 PN HF | affected 0 - < V4.2.0 |
Siemens | SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL | affected 0 - < V4.2.0 |
Siemens | SIPLUS ET 200MP IM 155-5 PN ST | affected 0 - < V4.1.0 |
Siemens | SIPLUS ET 200MP IM 155-5 PN ST TX RAIL | affected 0 - < V4.1.0 |
Siemens | SIPLUS ET 200SP IM 155-6 PN HF | affected 0 - < V4.2.0 |
Siemens | SIPLUS ET 200SP IM 155-6 PN HF | affected 0 - < V4.2.0 |
Siemens | SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL | affected 0 - < V4.2.0 |
Siemens | SIPLUS ET 200SP IM 155-6 PN ST | affected 0 - < V4.1.0 |
Siemens | SIPLUS ET 200SP IM 155-6 PN ST BA | affected 0 - < V4.1.0 |
Siemens | SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL | affected 0 - < V4.1.0 |
Siemens | SIPLUS ET 200SP IM 155-6 PN ST TX RAIL | affected 0 - < V4.1.0 |
Siemens | SIPLUS NET CP 343-1 | affected All versions |
Siemens | SIPLUS NET CP 343-1 Advanced | affected All versions |
Siemens | SIPLUS NET CP 343-1 Lean | affected All versions |
Siemens | SIPLUS NET CP 443-1 | affected 0 - < V3.3 |
Siemens | SIPLUS NET CP 443-1 Advanced | affected 0 - < V3.3 |
Siemens | SIPLUS NET SCALANCE X308-2 | affected All versions < V4.1.4 |
Siemens | SOFTNET-IE PNIO | affected All versions |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now